IT Engineer

About The Position

Requirements

• 3+ years of IT support or systems administration experience in a professional environment
• Hands-on experience with Google Workspace administration, Microsoft Intune, and Okta (or comparable IdP)
• Proficiency supporting both Windows and macOS devices; experience with MDM platforms (Intune, SimpleMDM, Jamf, or equivalent)
• Working knowledge of networking fundamentals: VLANs, Wi-Fi, VPN, DNS/DHCP
• Comfort managing networking hardware (switches, firewalls) in the Juniper ecosystem
• Ability to manage competing priorities and communicate clearly with non-technical teammates
• Hands-on approach — equally comfortable owning a strategic rollout and untangling a conference room cable

Nice To Haves

• Familiarity with CMMC, NIST SP 800-171, Cloud Security Alliance or other compliance frameworks
• Experience designing or improving automated provisioning/deprovisioning workflows
• Scripting or automation skills
• A/V setup and event support experience
• CompTIA A+, Network+, Security+, or similar certifications

Responsibilities

• Serve as the first line of support for all hardware, software, printer, Wi-Fi, and general device issues
• Manage VPN access and remote connectivity for distributed team members
• Support conference room AV equipment, meeting room displays, and Joan room-scheduling devices
• Manage onsite networking hardware and infrastructure (Wi-Fi Access Points, Switches, Firewalls)
• Bring in outside vendors or specialists to solve in-house networking issues.
• Deploy and Administer Okta as AIM’s primary identity provider: user lifecycle, SSO integrations, and app assignments
• Own and manage company device management through SimpleMDM and Intune and/or similar, including managing device policies and automatic provisioning when applicable
• Execute and continuously improve onboarding and offboarding workflows from account provisioning to device setup to access revocation
• Enforce device compliance baselines that protect company IP and meet security requirements
• Manage Google Workspace: group structure, OU administration, permissions, and admin settings
• Own software subscriptions and licenses — assign seats, reclaim unused licenses, and control costs
• Maintain SSO integrations and automate provisioning/deprovisioning across the SaaS stack
• Troubleshoot on-site Wi-Fi performance and network issues; oversee expansion of internal network infrastructure (additional Ethernet drops, etc.)
• Design and maintain guest Wi-Fi segmentation so visitor access is simple and secure
• Administer visitor check-in workflows, badge issuance, and access photo processes
• Maintain spam filtering, phishing protection, and cybersecurity hygiene baselines
• Support audits and compliance reviews as AIM’s operational footprint grows
• Okta deployment and full rollout as AIM’s primary IdP, replacing Google Workspace in that role
• Deploy Windows device management rollout via Intune (or similar) and finalize SimpleMDM policy alignment for Macs
• Google Workspace redesign: rationalize OU vs. group structure, define role-based access, and establish scalable email group architecture
• Guest Wi-Fi redesign and network segmentation
• Visitor check-in and badging workflow: initial design and rollout
• Security compliance readiness: implement IT controls, close identified gaps, and build documentation that scales

Benefits

• Meaningful equity participation